GitHub - gssapi/gssproxy: A proxy for GSSAPI | Docs at https://github.com/gssapi/gssproxy/tree/main/docs

This is the gss-proxy project.

Documentation lives in the docs folder of this repository.

The goal is to have a GSS-API proxy, with standardizable protocol and a (somewhat portable) reference client and server implementation. There are several motivations for this some of which are:

Kernel-mode GSS-API applications (CIFS, NFS, AFS, ...) need to be able to leave all complexity of GSS_Init/Accept_sec_context() out of the kernel by upcalling to a daemon that does all the dirty work.
Isolation and privilege separation for user-mode applications. For example: letting HTTP servers use but not see the keytabe entries for HTTP/* principals for accepting security contexts.
Possibly an ssh-agent-like SSH agent for GSS credentials -- a gss-agent.

gss-proxy uses libverto for dealing with event loops. Note that you need to have at least one libverto event library installed (e.g. libverto-tevent).

We have a mailing list and an IRC channel (#gssapi on libera.chat).

Name	Name	Last commit message	Last commit date
Latest commit jrisc and simo5 Fix gssproxy.conf manpage about comments Mar 26, 2025 c66e429 · Mar 26, 2025 History 744 Commits
.github/workflows	.github/workflows	Revamp and modernize the CI scripts	Feb 11, 2025
contrib	contrib	Update URLs to project page, fedorahosted.org got retired	Mar 20, 2024
docs	docs	Add note about libnfsidmap to NFS docs	May 3, 2024
examples	examples	Always install the gss module configuration	May 23, 2022
external	external	[gssproxy] Modernize systemd.m4 macro	Oct 25, 2023
man	man	Fix gssproxy.conf manpage about comments	Mar 26, 2025
po	po	Intial skeleton gssproxy daemon	Jan 5, 2012
rpcgen	rpcgen	Change declaration of function map	Feb 11, 2025
src	src	Respect krb5_principal when impersonating	Feb 11, 2025
systemd	systemd	Revert "Remove the NoNewPrivileges because it breaks the ability to o…	Mar 6, 2025
tests	tests	Fix various issues detected by static analysis	Aug 7, 2024
x-files	x-files	Official IANA Assigned RPC Program Number	Mar 30, 2012
.gitignore	.gitignore	Add test for userproxy mode	May 23, 2022
BUILD.txt	BUILD.txt	Update test and krb5 dependency list in BUILD.txt	Aug 11, 2017
COPYING	COPYING	Fix formatting on noncompliant copyright lines	Sep 4, 2015
Makefile.am	Makefile.am	Move runtime management function to gp_mgmt.c	May 26, 2022
NOTES	NOTES	add note about how to deal with ccache files	Apr 5, 2012
README.md	README.md	Add a few badges rendered on github	Jun 5, 2022
STYLE.txt	STYLE.txt	Rename README.style -> STYLE.txt so pagure stops picking it up	May 9, 2018
build_macros.m4	build_macros.m4	Intial skeleton gssproxy daemon	Jan 5, 2012
conf_macros.m4	conf_macros.m4	Always install the gss module configuration	May 23, 2022
configure.ac	configure.ac	Avoid bashism in configure script	Apr 12, 2024
version.m4	version.m4	Version 0.9.2	Oct 19, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

About

Releases 27

Packages

Contributors 25

Languages

License

gssapi/gssproxy

Folders and files

Latest commit

History

Repository files navigation

About

Topics

Resources

License

Stars

Watchers

Forks

Releases 27

Packages 0

Contributors 25

Languages

Packages